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(54) AUTHENTICATION SYSTEM 

(57)Abstract: 

PROBLEM TO BE SOLVED: To simply execute 
authentication processing while securing security by 
executing authentication processing based on a rule that 
a first authenticator included in first authentication 
information is the same authenticator as that signing a 
first code included in the first authentication information 
with a key. 

SOLUTION: A center 1 1 checks whether or not the rule 
is conformed consisting of a first sub-rule that a counted 
value included in the authentication information 
transmitted this time (first authentication information) is 
larger than a counted value included in authentication 
information transmitted last time (second identification 
information), and a second sub-rule that an authenticator 

included in authentication information has a counted value included in the authentication 
information the same as that the authenticator which is signed with a key. Then at the time of 
obeying, the center 1 1 identifies that the call originating source of the identification information 
is correctly a user 10. 
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mU:^-^ t m^a^ > t (Dills V. IBJ*:?>^^*!> 6n A; 

! «:'^^ifa^<:sjsn^ip( i (j>^mcwmm.x^^ox 
ummi-tvc^m-omm^xh cc'iT-y 

^iO-.S:*^^P^. 1 (0>\^-->l^\iLr>X\.4c^^iC^ 

mm 2] mm $ nx ^ tcin^ic g'^c ^ ri^tttSA^ 
^iifji ^ -ir > <L, s^-b> ^i^mixim^miM btm 
^^c:^ ^ ^ - t^'i(Dfei t:'OBiIl^l^^^:*^f 

r-^S uxtj:^V2M'f-t(0^Sis:^'^ir,rj, mMmi^mU 

pia^ > It. ^isii^ff 5 * tern 1 (^s^iEtSf gcc^ 
^n-£>^ 1 o>r^^i>mi^:2,-^iy>i;^mm^it^nxi^fc 

W2(DWMmtiC^^nXi.^fcm2(D1R^J:i 0 ^>BiIIEllg 

j D i ^ ^ 1/ r V ^ $S^l^^^<: miimxmz u x 
tj:^'mL^ttt^m-'<DtmTxh ^ti.^'^mzo^^ 
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2 

OX . pia^ 1 oc'i^^j^^By la^ 2 (^>r^^^ jje^<5; uiiiia 
iii>^wi*Q $ nidify Ji^ --)i^&m^ 6ct ^i^wt tt ^ 
mm.4] mm^:^^kt. ^m^nx^tcMi 

[15*315] mu^>^kt. ^mi^^^tix^fcmi 

<muw 1 <^t^ Mc -7 r I ^^i: A' o temple , 5^ 

mid:2.^^it. miz^ y^'^^'ir>mis$nxi^tcSimcm 
smx'^& ox rj. 2 (c-.mii'^'St^m 3 o>imtn^ 
mid-^y'^icmiixmnb. 

$tn^m2 (otm^iy"^^^ > x^^ 5 it tcmmiUic. 
m'^^^-xm^ b X u ^isis-r i tt^m-omm^xh h 

ti.^'>m20}\^-)li>CU^ fi'^iP^^^. 2 (0)1 - 

Mm-^x\.>tc^'^^c^ %m^it'^t>>x^fcm 1 (omm. 
mv^sX>^m^mtnx^t<Mzmm^^tms.-nc> 

«(i7c:?!>^iE O < mtZ^ -t^^C^b 6 C i ^ISSEf ^ C i * 

l^*©? ] guiB^-ifft*. i?ias zomwL'i-t o 

f^mm^Mxm^ 0 r 'Vt ^2^E^?:Byia-fe > a^^Cj^d 

x^fcm3<otmin^iC'§i^n^m2<Dmmi--^rK tk.^ 
m^^nmz i '^'ii*^ $ nx u h^^nm^c 

imm.B ] mit^nx^tcinmc^-:^\,*xm^^i>^ 

lEmrj.^HTt^^'h^is^txx tcm^XihhC t<DmE 
i,Ci$<.^X. 

50 ^^<Dm^mfif!.^^m^<^m^^t>rmtt. b 
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3 

^tt^C^-bV^fi, S^-b>:5?frC|Slt^TltfR^j^fIl'S^fil 

xw¥ihxui^^^tmM^o^>^^^^'^'^^^y'> 
j \)^^t^^^^oxuh%%^^^lc^mMx%Zl^x 

pis-fe > 5? it. -^SiHii^ nx at fcis i o>mmn^^ 
^fx^wiomm'^ii^ m^^-^^h^h^mim^inx 
^ fern 2 o>wmmici^^ nr I ^ j^ci^ 2 o>b^^: 0 ^mi 
£EiBF?tcS£(,^{g(<:iigf -Sf^^r-^b^^c. iy>-?, »M2 

^.^ 1 <D}i'-Mcu^xi<^fcm'^i'C. 1 (^isiifctjiis 
(o^ff 7G?>^iE u < gria^ - if r'-fc ^ c i ^isset c i 40 

xm^\*'>^m^ti^^n,t^^M^^t>r^^^m^^^i> 

[ig*3gl 1 ) BllS-bV^fii. Ji«BfSJ«r^5i!-5SS2a> 



4 

a>. mm^m^fix^fcm2o>mM:\mi'C.^^mm2 

mz&wm'^h'mnfc. ^m^m^nxiitcW' i <^m 
mmo>^itm\o>. mm^m $ nx ^ tern 2 (cmm 

[000 n 

mn->i^x^m^i>'^iE^fj:nm7t^^*^^m$ nx * 
[ 0 0 0 2 ] 

r. v.roy'^'^zf im <cmjtiiSK:^mir>nxi.^^o 
mwT^o ^yiixit. i^m^nx^fc-'^^':?- \F'^f^ 

^^^ms^voh(j>xhtiktx< . numw^m^^x 
fit. 3^(i$n^c Bfci7*yy 'si^t'^ > 'sm^ 0 > 

iEU*.^^-l7^^C^^C<i:?:I^^ET^o C(7>:^S^Ctt. ti 
^0 
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5 

iilSiit^?i^jr 5 figtc ^ > ^7 'J > h ^ n^o C<0^m> 

[ 0 0 0 3 ] us oc:^Ta-l7^4 0 i*. ai&R{<:^«T 
<♦ ^-■tf4 03!>^1t-b'XS*?:-lr>'$^4 HCifil 

{UM^<^^Z> ^iX^b. 'C-(^>sSiEi=-E <R> ^Hr> 

E <R) <i;3>s-S(l/A:ii^i<:'C-<^>eiiE^E (R> <rM^ 
7c;0iE(./l^i-1f4 OT'^-SCi^^SliEL/, •eoC-a-lT' 

[ 0 0 0 4 ] l^'O A: 4 ^Si<^>l^!I:^^t:'ii, l?.iI<?>A: 

[0005] -:^r. 2SSE»fSli. ^»<;<7-K^, iis 

- 2 1 9 0 5 3 ^calStC 1 -:xm.m^hho 
[ 0 0 0 6 ] @ 8 ii. W?S¥5 - 2 1 9 0 5 3 ^S^lSCC 

^^RTH-c^-s^ co^-n^vxt, mmm^m^ 

:i-T5 0 I laietCf^gS t < E ( R > > ^ I 
+ l@e<^>filS^E (R) <LUfJil^*Ct,**o C(Otd^. 
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[ 0 0 0 7 ] 

[ 0 0 0 ^]ttc. WW (World Wide W 
e b > rjr ^(0^: ^ i»cW^<0^ > tc ^7 > ^ a r -fe A 
f ^1f-b';^i<:<:<^!:SsE7^^^^(,^^<L. ^-ifi^. 3^ 

20 [ 0 0 0 9 1 

X^fcK^X$>^CtO>tm^^i7fj:^'^y''^t. ^0>^ 
>^lC0\iiX\m^^^mb^O>in^/>'^iL^rj:mM7^^^ 

x<D±.i^mM.^^^^'f ^im7S7^t,a<$i, ^x . ±12^-^ 

30 m^t^mt(DWs^^mtxhi^ . ±.m^-t\t. ± 

. ^i^^mcimmx'^^ u xri 6mti'f-t<onis 

m 1 (rM'^i>^'^<C'^-'^'^^'hwmmM:^nx^fcm2<^ 
mm\mic^^ nx c ^ tern 2 o>^^. 0 ^±isib?* ^csl 

i isiE-r ^ c i ^i^a^t i r 

[ 0 0 1 0 ] ^tc. ±.tzn^^^^mr^'^^^<rM2(J> 

wmn^xt. '^m^inx^tcn^t^^'^^^x^^A^m.t^ 
±Mrimtyt^i^'hm^tnx ^ fcmixhi>ct(owm. 
^ -fe > ^7 i . -t-i^)^ > ^cm^i x^^^^'i^m 1/ -e 
50 <^>m63!>^jES'ti^^7G*^6^<f$ny-dsiar* 
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<-cc'a-i?^^6HiirEi3S(i5 nx tm z omm^n^^ 
srtr i^;^:^2 j: 0 ^>±l^lli^?^cs^l^^]|^<:^4gt' 
[ 0 Oil] K.cx\ ±ia*#fe^c>.^ 1 (J>mm.l7^fn^ 

^^>V^ 'U ti,X. ±12^ 1 (K>^^i}^±mm 2 (C'l^^^ 

7>^5t^bi^o tic. ±ia^>^^fii. 

r^^c:^ 1 <DI?iiEtSlfi:?:>^±l2B2C>-^:?0U--.'L'^<:i*S^'7 

u % tm^ t tb'^-iDim^X'h ^ i c * ^ ^ 2 - 
li^^c, mmmm^tix^fcwimmis^m^m^ 

[0013] ccom^ic. ±iaM3cC'BMmo-^. ±12 

on^^^ui>(ox^i>cti>^1^^b<. <-<^ig^cc$ 
i^ic. ±m^—fu. ±Mam2o>mM^tox. ±i2a. 
ft<!:±i2^3 ©f^^iJ&^S^snr^c ^s^^fiF^<c±ia 



[5) ^$^3¥ 10-32571 

abO. ±i2Hj>^{i. ±ia.??2<^.'U-^^ii/t:. 

i>y ^c>^z^^rm^'^^ic}im\Mt^Wim^nx 

^^^^^c±M^mx^^ hxfj:hmK'rtit^w\-o>m 
ti^xhhti.^^>\^--}\^*^\m^h^^*xhhctif^tti^ 

[0 0 1 4 ] iK/c. ±iaae«j*3t.^'S-*ife^coigsE-& 
tmxis^^mhx^^ . ±£2^-tfk*> ^laisiiE^s 

20 r 'S:^:i:>'tc±l3!Wj^ccS^ ^ x 1^ (./C ^^T^(<: ±1218 

i^rxii^ffb. ±i2-fe>^^i*. ^"^Wit^^nx^td^io 

mis If $ nr ^ fcm 2 c>isiiEfi?ftccg- ^ nr c -/c^ 2 <^ 
^^^<^:*i^±i3iK*tciStcMlitc{igT^??^t:'^->t:, 
^(r>m2(o^^^u^t i/±iai||j*tcmi^!t<^> 

30 !SiiE1SIS<0^«7d?!^^iE (./ < ±12^ X'-fe ^ C <t *^WM. 
mm'ntK^t. 'm^nx^ic^^^cUr^\.^X<:(rAmif^ 

•^tCfel^t:. ±52i-1fi±52Hr>a?i<^>?X:^rr\ M 
r4($^. ±ga:2.-i?'|i, ±iggSSff^4:>^tc*>/c9. ± 

®« Ur?y^teiE^'$r^t^r^lItjl?tl^±i2Hr >:57i<:ffill^ 

i^fi 5 nr * :rci^ 2 (^isiifclsiscc^^ nr t ^ Aii^ 2 <^^^ 
0 ^±ia!i»j?tc:SLC^f^(<:(ig'r^f?^r'^) or . 
50 ^. «<3>^2©R^*j@j^iO±£ai»«¥w:sei^^«(^>» 
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w 

hm 1 <^>??^-4^^**:>f JiS^to. Biileii^fl $ t\X * 

fc. ^m^^ nx fi? fern I <^>£S!Eii$g<^>g{f B*^J(?>. 
fjiiixft $ nx ^ fern 2 (omm^(o^itmni^='^<ow 
2<C'mmmtt\:^. pj\^<C'n^mmvs^^cfh^m'^ 20 

[ 0 0 17] 

7>S:^?^>MI ( i } Xih^tt^, ^fc^--'^l Olt 
1), -b>^ 1 Si^i^'^l' Ml ( ! -2) T-'«>0. cn 

cc^cii. 1 o<!;'fe>^M 1, i2to>^:^x\ 
> hg ( ! ) ■c-<05^'!>> m { i ) tcsttT'sai/t: so 



10-32571 

U^mi^E ( i ) tO>9l^i7^^^fj::^mm^ < i , E 
( i > ) «:-te>3? 1 1 CC[al4:fi:3iliiT'2>o 1 0 

li. «<^>^^. **^F>^il < i ) *'Y>^^u>*>i>t/t:;^7 

3. i2>^ 1 1 X<:f>sEM9l^m 

■b>»i lit. '%@3se5nr5efei^.iifctsi6i < i, e 

( i > ) (*^BjCCC*^j^ l<7>!S!miE) OC^^tl^^ 
hfl ( ! ) <-*lfe^i<:c^^01cC'lT^) i>^mM^iM 
^tXXBtctmmi (!-l,E<i-l)) <*ft« 

ta^^>02<Di?i±fj5l«) ic-^^nxK^fcfiO^hn ( ! 
- 1 > {-^mm^a^'^mz€'^^) ^:^jh&<oi<^tj:^ 

{ i , E { i > > u:^$tti^mK^E i \ ) i>^. ^o>U 

mm ( \ , e < ! > ) m < i > tc 

mx^zoxr^imti^E i ! > ttt^m-<otm^x' 

-StDD'^. ^(o>v-Mc^'>x\.^tcm^ic^ ^(oi^m^^ 

( i , E < I ) > <^>|fe^5ci0^iEl/<a-l?'l (rc^^C 

t^^vmrh. ^fc-^y^i lit. :2.-if 1 oy5-.^?«i'^ 
It. ^(j>mmm(m,^7c^'^'^u^-^\ (jxhi>(o 

< i + 1 > ^(J>i70:y hH ( I + 1 ) u:§8*CS«l/ 

(i + l, E(i + i) ) :g:-b>'$? 1 1 tciait^r^iisfi^ 
*S^i«ttOfci^?. C<^>2SiiEl5« ( » + 1 , E 

{ i + 1 ) ) h:^n^i>ci,^^m\<mm^^^c\m^ 

y>>H/i::^?*!:?>Hl< i+2) <LT^o 

5. 1 rc(^>!SaE^fi 

■b>^? 1 1 it. ^aaSii^tir^tfel^JifctglR ( i + 1 , 

E ( i + 1 ) ) < • + 1 ) ;0.^1iirii| 

mt^nx^icxm^^ < i , e ( i > ) cc^^nri^ 

+ 1 ) ) tdS^n^lSsIT-E ( ! + 1 ) -t-CC'IglltJI 
IR ( i + 1 , £<! + !>) tc:S5n>&:^'?> { i 

+ 1 ) tcagtr'SSi/Tcnf^fsti^E < i + 1 ) itb^m 

"-c:-s?JE^r A <i: ^ ^ I? 2 <?>i7^'y>w - }i t m^ii<r>^ 

-/>\^-)\,iP''htl^i\^--i\^ ^ ccc * ^ ^ 1 Wl^ - .'U > 

•t-CC-rSliEtjltfi (i + l,E<i-H>) (D^ilTC^^^iEl/ 
<:i-l7'l ()T'^^C<i:?:IS5fff SA:^>5?1 1 

it. 1 ^'k^h<r>ii'^r^ ril ( i 4 1) ^la^'f 

^. ^^OC-b^^S?! lit. 'e<^!S!EltlR(?>#fe<i7t;0.^iEa 
U:x-'f\ i}Xhh(r>x\ ^a>:i-if 1 occi?*-f 
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[0 0 1 8] CC$tX'X'2^0>WM^^E^^yr>fo^K ^ 

^tm^E ( i + 2 > <i;CC:'j<J(:^30^JE>;:£^lglEi^$E < I + 

2, E ( I +2) > licm^ixm^t^o ^ 
-tf 1 0(«-OC'f^:^'5>hfg { I 4-2) ^^>^l>>^> 
H/^O^-^Vhiii ( ! + 3) iT^* Uj^H/. CCC'dKI 

■i-3> i> •C--o:':^7':?>hfii ( i +3) «<:aSr'^-'SUt:rjr 20 
htm^E { i + 3 > ioc:'j$J(:&3:»6'ci:^!SfiEtil$g < i + 

3, E ( ! + 3 ) } ^-b:> ^ 1 1 CCfPiC^fi^ffT-So 
1^. ^(Ommm (!+3, E<!+3)) ^*^^CC 

'5>hll ( !+3) '$:'r>^?U->f> hUi:?^7'?> hit 
{ i + 4) iT-S. 
8- 1 ^C<?>iS!E^fS 

■b > 3? 1 1 li. ^Jil^ii^ nt: ^ fcl5.EtfelS < i + 3 . 
E ( i + 3) ) ic^^nt±fO>Yi$ ( ! -^3) mm 
mw^nx^fcmm^ < i + 1 , e < i + 1 > > oc^ 30 

4-3, E { ! + 3) ) ccg^n^i^lifc^E { I + 3) 

^OWMim ( ! 4-3, E { ! + 3) ) tCSifcn^ 
;?7»^^> m { i + 3 ) (C8rcS«l/C^C^2^E^E ( i 
^-3 ) itt^p-<^mET^C'^b^ii^^^2(?>-t^70b-- 
}l t (OniS(f>'^ - >UiO-' 6 V ^ .'L' - -^l-CCSfc ^ ;0 .Sj^)^^: 

(14-3, E(i+3)) C'mi7ciO-^El/< 1 0 

^(O^f^Tth^:^.-^ 1 0:f)^hO>i7 0l^ hH { • 4- 3 ) ^ 

isf^-r^o ^^tc-^>'^\ lit. ^-<Dmm^<omt7t 

[0019] CCC'J: ^CC. mm^ < i 4- 2 , E ( i 4- 
2 > ) 3!>^-lz>3f 1 1 icmmbfj:iy>^fcm^X'hr>Xt. 

l(C4iSt^r. :X05ISSEtll« < i 4-3. E ( i 4- 
3) > ^C^^n6:b<?>hi$ i I -^Z)i>'^-^>^ 1 liC 

Bm^^nxi^-ttfO^vB ( ! 4- 1 ) c^:»i7;*<. 3^^^ 

|jgaE»iS«ft< 14-3, E < * 4-3) ) > tC^^n^m 50 



12 

gE^ (E { I + 3) ) h. < ! 4-3) i<:a8r 

[0 02 0] vt^<:. ±il5U:^c5^^CC?|^ii^2t4r>^7l 1 

^"tflOii. 8§^E^$C:?^tc^fcO. :#7C^>hfi ( I 

(14-4) icC'Sj(^:<>^j=>;:i:^!S!EJt$E ( ! 4- 4, Ed 
4-4)) (cc!:"BMt#lft^>*^^ca^^>Mi^i^>iiEtjl?fe 

f'^-S) -Sr-te^jS?! 2fCf5i(:^t:3^mr^<, ^-1f 1 Oli 
•C-o:'f|t:^'^j> Mi ( ! +4) ^'i>^'}>^>V\^Xi7^ 

< 1 4-5) ir^, 

1 0. -bV'^ I ZXOWK^^ 

■b>^12lt. '%@3^<f5nr3fA:l§Jifc«ll«! ( i +4, 

E ( i + 4) ) i'C^^iCl^ioO^W^ ( » 4- 4 ) 

ji^m^nrsf^-ciMfgiR ( i - 2 , e < » - 2 ) > cc^ 

^n'CC^ft:::^*^?>Hl ( i - 2> X^h&(J>t^^rj,i7 0 

yvmxhhti<^'y'B\(o^':/}\,^)vt. wimu ( ! 

4-4, E { » 4-4) ) ) iC^^txhmm.'^E (14-4) 

i>y ^<K>wmmi ( 1 4-4, e ( 1 4-4) ) ccs$n^ 

m < i 4- 4 ) tC^CS«L/C^C*agSE^- < E 

(14-4) ) tit^\^-<omm.'?'X^^t\.^'>^2(^^ 
- .'U <t v>ySt^o>'*?' ^>\^ - Ji'3!>> jE^'ti i 

tCfi]^orc^A:*S^ti:, -C-OC'ISIEtjllS < 1 -K4, E < ! + 
4 ) ) (Dlfe<I5ti^^jE(./ < ^-17^ 1 0 Xhh C t ^im.f 

ttc^>^\2\t. a-l7*l Oi0^^a>;'7'?> hit 
(14-4) ^Umtho 56CC-fe>5? 1 2\t. ^<OWM 

1 0 021] c o:- J: ^ tc. a-'^ii'fe > c <!; e<:B?^E^ 

hr^xm-(o^mxj:<. cofcit^. :i--'^m(omw 

i>^&^ictj:^, m2\t. m\^c^^'ttm-n^ici^i<^x. 

[ 0 0 2 2 ] 'te > 1 1 kt. sSIE^iO-^El/ < 
UAivO ig^i^:. ^-^1^*1 Oi>^':hO:^^^^^-^'}'(C'm^ 

xi^^'^f V ofcc6hihomi>o>x\ 'm^o>f7*yyY^ 
c^'c. ia2'$:^BsorGji0^'r'So femci2$)i'^^3(ias 
[0 02 3 J 1- \ ^o>^im 
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^— tflOii. mi^^ii ^('CihfcO . '^0>^<D& 

< i > ^<0'h^>'S<D& { I ) imX'B&bXU^ 

[0 02 4] 2. -b^-^l IWlKEsaiS 

< i > > u:^^n^i7<?l^ hH { I ) 1 1 

ocia^$nfc:^? > ^ fi ( c c trii^c-b > i i ccie 
mm < ! , E ( ! > ) ^<:s•^n'£>:^?*?> Ml < i > cc 
T!P^:^vih6tmommmTr^>o -is. v^m 

U^^ntcii^:^V&. (i -1) ^0 

<^:^»^f > Ki < i > ^mci^mc^h, 

( i > ) ^Ci^^UX\.^1cti^^"^V^ ( i ) J:0^>ll§rl/ 

•'^) tif>i^^^uxuVi%^n^i.cwm^oxtihm 

a£^E (R, i + l) {*^^tCC^^>|g2C>!SE^<7>- 
^) ^Oti^'^V^ ( i + 1 ) t(07l1Sif>hr^i>m 
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* NOTICES * 

JPO and NCI PI are not responsible for any 
damages caused by the use of this translation. 

1. This document has been translated by computer. So the translation may not reflect the original 
precisely. 

2. **** shows the word which can not be translated. 

3. In the drawings, any words are not translated. 

[Claim(s)] 

[Claim 1] The center which attests that it is the information to which this information has been 
transmitted from just dispatch origin based on the transmitted information, In the authentication 
method which performs said authentication between the users who receive authentication of 
being the information which transmitted information towards this center and was disseminated 
from dispatch origin with this just information on the both sides of said user and said center The 
both sides of the information showing the sequence of this sign that constitutes the set of the sign 
as which sequence was determined, and the key which signs a sign are shared. Said user The sign 
which it comes to update according to said sequence whenever it is going to receive the 
authentication which constitutes said set in receiving said authentication, The authentication 
information which consists of both sides with the authentication child who comes to sign this 
sign with said key is turned to said center, and it transmits. Said center The 1st subrule that it is 
the sign in which the 1st sign contained in the 1st authentication information transmitted this 
time is behind located according to said sequence rather than the 2nd sign contained in the 2nd 
authentication information transmitted last time from said user, It investigates whether the 1st 
Ruhr which consists of a subrule of both sides with the 2nd subrule that he is the same 
authentication child compared with the authentication child who comes to sign the 1st sign 
contained in the 1st authentication information with said key is followed, the 1st authentication 
child contained in the 1st authentication information ~ this - the case where this 1st Ruhr is 
followed - this the authentication method characterized by attesting that the dispatch origin of 
the 1st authentication information is said user surely. 

[Claim 2] The center which attests that it is the information to which this information has been 
transmitted from just dispatch origin based on the transmitted information, In the authentication 
method which performs said authentication between the users who receive authentication of 
being the information which transmitted information towards this center and was disseminated 
from dispatch origin with this just information on the both sides of said user and said center The 
both sides of the information showing the sequence of this sign that constitutes the set of the sign 
as which sequence was determined, and the key which signs a sign are shared. Said user The sign 
which it comes to update according to said sequence whenever it is going to receive the 
authentication which constitutes said set in receiving said authentication, Tum to said center the 
authentication information which consists of both sides with the authentication child who comes 
to sign the joint sign which comes to join together this sign and the center ID code which 
specifies the center of a transmission place with said key, and it transmits. The 1st subrule that 
said center is a sign in which the 1st sign contained in the 1st authentication information 
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transmitted this time is behind located according to said sequence rather than the 2nd sign 
contained in the 2nd authentication information transmitted last time from said user, The 1st 
authentication child contained in the 1st authentication information It investigates whether the 
1st Ruhr which consists of a subrule of both sides with the 2nd subrule that he is the same 
authentication child compared with the authentication child who comes to sign the joint sign 
which comes to join together the 1st sign and its own center ID code which are contained in the 
1st authentication information with said key is followed, this the case where this 1st Ruhr is 
followed - this - the authentication method characterized by attesting that the dispatch origin of 
the 1st authentication information is said user surely. 

[Claim 3] Said center is an authentication method according to claim 1 or 2 characterized by 
adopting the subrule to which the regulation of being the sign to which said 1st sign is located 
within the limits of predetermined according to said sequence with said 2nd sign as the starting 
point was added as said 1st subrule. 

[Claim 4] Said center is an authentication method according to claim 1 or 2 characterized by 
judging with it being an authentication demand unjust when the 1st authentication information 
transmitted this time does not follow said 2nd subrule. 

[Claim 5] Although the 1st authentication information transmitted this time needs said center for 
said 2nd subrule therefore, when said 1st subrule is not followed The random number generated 
in this center is transmitted to said user. Said user From said center, the 3rd authentication 
information including the 2nd authentication child who comes to sign the transmitted random 
number with said key is turned to said center, and it transmits. Said center It investigates whether 
the 2nd Ruhr that he is the same authentication child compared with the authentication child who 
comes to sign said random number which the 2nd authentication child contained in the 3rd 
authentication information transmitted this time generated in this center with said key is 
followed. The authentication method according to claim 1 or 2 with which both sides with 3rd 
authentication information transmitted 1st authentication information [ which has been 
transmitted last time ] and this time when this 2nd Ruhr is followed dispatch-origin is 
characterized by attesting that he is said user surely. 

[Claim 6] The authentication method according to claim 5 characterized by being a thing 
containing the 3rd sign said whose 3rd authentication information is the sign of either of the 
signs which constitute said set. 

[Claim 7] Said user is what transmits the authentication child who comes to sign the joint sign 
with which it comes to combine said random number and said 3rd sign with said key as said 2nd 
authentication child to said center. Said center as said 2nd Ruhr The 2nd authentication child 
contained in the 3rd authentication information transmitted this time The authentication method 
according to claim 6 characterized by being what adopts the Ruhr that he is the same 
authentication child compared with the authentication child who comes to sign the joint sign with 
which it comes to combine said random number generated in this center, and the 3rd sign 
contained in the authentication information transmitted this time with said key. 
[Claim 8] The center which attests that it is the information to which this information has been 
transmitted from just dispatch origin based on the transmitted information. In the authentication 
method which performs said authentication between the users who receive authentication of 
being the information which transmitted information towards this center and was disseminated 
from dispatch origin with this just information on the both sides of said user and said center The 
both sides of the information showing the sequence of this sign that constitutes the set of the sign 
as which sequence was determined, and the key which signs a sign are shared. Said user Turn to 
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said center authentication information including the authentication child who comes to sign the 
sign which it comes to update according to said sequence whenever it is going to receive the 
authentication which constitutes said set in. receiving said authentication with said key, and it 
transmits. The 1st authentication child contained in the 1st authentication information transmitted 
this time said center It is the sign behind located according to said sequence rather than the 2nd 
sign contained in the 2nd authentication information transmitted last time from said user. And 
when the 1st Ruhr that he is the same authentication child as the authentication child of either of 
each authentication child who comes to sign each sign located within the limits of predetermined 
according to said sequence with this 2nd sign as the starting point with said key is followed this - 
- the authentication method characterized by attesting that the dispatch origin of the 1st 
authentication information is said user surely. 

[Claim 9] The center which attests that it is the information to which this information has been 
transmitted from just dispatch origin based on the transmitted information, In the authentication 
method which performs said authentication between the users who receive authentication of 
being the information which transmitted information towards this center and was disseminated 
from dispatch origin with this just information on the both sides of said user and said center The 
both sides of the information showing the sequence of this sign that constitutes the set of the sign 
as which sequence was determined, and the key which signs a sign are shared. Said user Turn to 
said center authentication information including the authentication child who comes to sign the 
joint sign which comes to join together the sign which it comes to update according to said 
sequence whenever it is going to receive the authentication which constitutes said set in 
receiving said authentication, and the center ID code which specifies the center of a transmission 
place with said key, and it transmits. The 1st authentication child contained in the 1st 
authentication information transmitted this time said center It is the sign behind located 
according to said sequence rather than the 2nd sign contained in the 2nd authentication 
information transmitted last time from said user, and When the 1st Ruhr that he is the same 
authentication child as the authentication child of either of each authentication child who comes 
to sign each joint sign which comes to join together each sign and its own center ID code which 
are located within the limits of predetermined according to said sequence with this 2nd sign as 
the starting point with said key is followed this - the authentication method characterized by 
attesting that the dispatch origin of the 1st authentication information is said user surely. 
[Claim 10] It is the authentication method according to claim 1 or 7 which said user has the 1st 
clock which gets to know current tinie, and is characterized by this user being a thing using the 
sign showing the current time obtained from this clock as a sign which constitutes said set. 
[Claim 1 1] Said center has the 2nd clock which gets to know current time. This center While the 
1st authentication information transmitted this time follows said 1st Ruhr furthermore - this - 
the current time which the 1st sign contained in the 1st authentication information expresses The 
1st elapsed time from current time which the 2nd sign contained in the 2nd authentication 
information transmitted last time expresses The receipt time of the 1st authentication information 
which was acquired from said 2nd clock and which has been transmitted this time, the case 
where it is within a predetermined allowable error compared with the 2nd elapsed time from the 
receipt time of the 2nd authentication information transmitted last time - this ~ the 
authentication method according to claim 10 characterized by attesting that the dispatch origin of 
the 1st authentication information is said user surely. 

[Detailed Description of the Invention] 
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[0001] 

[Field of the Invention] This invention relates to the authentication method which performs 
authentication between the center which attests that it is the information to which the information 
has been transmitted from just dispatch origin based on the transmitted information, and the user 
who receives authentication of being the information which transmitted information towards the 
center and was disseminated from dispatch origin with the just information. 
[0002] 

[Description of the Prior Art] Before, the authentication method of the following types (mold) is 
learned as above authentication methods. 

1) The authentication method user of a password mold registers the password into the center 
beforehand, in receiving authentication, turns the password to a center and transmits. In the 
center, when in agreement with the password with which the transmitted password is registered 
beforehand, it attests that the password dispatch-origin is a right user. This method results in 
allowing unjust access to the center by that holder in bad faith, when that password is intercepted 
by the holder in bad faith. ^ 

2) On the both sides of a consecutive-numbers type authentication method user and a center, it 
has a counter (this counter may use time of day that what is necessary is just the thing of the 
increment sequence of numbers in monotone), and in receiving authentication, a user turns the 
value of the counter by the side of a user to a center, and transmits. In the center, when the value 
of the transmitted counter and the value of the covmter by the side of a center are in agreement, it 
attests that the dispatch origin of the value of the counter is a right user. By this method, when 
the value thru/or time of day of a counter needs to be completely in agreement in the user and the 
center, the user was going to access the center and it failed, or when two or more centers are 
accessed, there is a possibility that the values of a counter may differ and time of day is adopted, 
a user's clock and the clock of a center need to be completely in agreement. Moreover, the value 
of the transmitted counter is intercepted and it results in allowing unjust access by generating the 
value of the following counter inmiediately and transmitting etc. 

3) consecutive numbers ~ it has a counter to the both sides of the authentication method user of a 
signature mold, and a center. Moreover, a user registers the key into the center beforehand while 
having the key which enciphers the value of a counter. In receiving authentication, a user creates 
a signature (authentication child) for the value of the counter by the side of a user with the key, 
turns the signature to a center and transmits. On the other hand, in the center, when the signature 
(authentication child) which signed with the key registered into the value of the counter by the 
side of a center, and was created, and the signature transmitted by the user are in agreement, it 
attests that the dispatch origin of the signature is a right user. Here, whenever the value of the 
counter by the side of a user and the value of the counter by the side of a center attest, the 
increment of them is carried out. Although safety increases considerably at that point since in the 
case of this method the value of a counter is not known even if intercepted, problems - it is 
necessary to make the value of a counter always in agreement etc. — remain. 

4) Authentication method drawing 5 of a challenge response mold is drawing showing the flow 
of the authentication method of the conventional challenge response mold. 

[0003] The user 40 who shows drawing 5 registers the key into the center 41 while having the 
key which signs a random number R. First, a user 40 turns a service request to a center 41, and 
transmits. Then, in attesting in response to this service request, a center 41 transmits a random 
number R towards a user 40. A user 40 signs the transmitted random number R with the key 
which the user 40 has, creates authentication child E (R) and (a signature of a random number 
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R), turns authentication child E (R) to a center 41, and transmits. It signs with the key registered 
into the random number R also in the center 41 on the other hand, and when authentication child 
E (R) transmitted by the user 40 is in agreement with the authentication child who created and 
created the authentication child, it attests that the dispatch origin of authentication child E (R) is 
the right user 40, and the user 40 is provided with service. In the case of this method, since the 
random number which cannot be predicted is signed with a key, the safety to a holder in bad 
faith is raised further. 

[0004] prediction of the message transmitted by four kinds of authentication methods mentioned 
above for authentication - a password mold and consecutive numbers - a mold and consecutive 
numbers - it becomes difficult in order of a signature mold and a challenge response mold, for 
this reason, the safety to unjust access to the center by the inaccurate user - a password mold 
and consecutive numbers - a mold and consecutive numbers - it rises in order of a signature 
mold and a challenge response mold. For this reason, many authentication methods of a 
challenge response mold are used conventionally. 

[0005] on the other hand - authentication processing ~ a password mold and consecutive 
numbers - a mold and consecutive numbers - it becomes more complicated and more 
complicated in order of a signature mold and a challenge response mold. For this reason, when 
many times authentication processing was continuously needed, the demand which simplifies 
authentication processing came out, securing safety comparable as the authentication method of 
a challenge response mold. In order to fill this demand, JP,5-219053,A has one proposal. 
[0006] Drawing 6 is drawing showing the flow of the authentication method of the challenge 
response mold proposed by JP,5-219053,A. In carrying out by repeating authentication 
processing, by this authentication method, the authentication child (E (R)) whom the user 50 
created to the Ith time on a user 50 and the both sides of a center 51 is used as I+lst random- 
niunbers E (R). For this reason, when repeating simple authentication processing of the 
authentication method of the challenge response mold which it is not necessary to send a random 
number to the I+lst time, and processing of that whole part ends quickly, and is shown in 
drawing 4 mentioned above, even if it compares a center 51, safety does not fall. 
[0007] 

[Problem(s) to be Solved by the Invention] However, when it carries out using the authentication 
method of the challenge response mold using the authentication child who created to the Ith time 
as the I+lst random numbers mentioned above by repeating authentication processing using a 
communication line without the guarantee in which an authentication child like the Internet not 
necessarily reaches a center, an authentication child may fail in turbulence and authentication. 
[0008] Moreover, if this authentication method is used for the service which accesses two or 
more centers at random like WWW (World Wide Web), a user needs to record the authentication 
child who transmitted for every center, and, for this reason, the device by the side of a user will 
become complicated. This invention aims at offering the authentication method which can 
perform authentication processing easily after securing sufficient safety in view of the above- 
mentioned situation. 
[0009] 

[Means for Solving the Problem] The 1st authentication method of the authentication methods of 
this invention which attains the above-mentioned purpose The center which attests that it is the 
information to which the information has been transmitted from just dispatch origin based on the 
transmitted information, In the authentication method which performs the above-mentioned 
authentication between the users who receive authentication of being the information which 
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transmitted information towards the center and was disseminated from dispatch origin with the 
just information on the both sides of the above-mentioned user and the above-mentioned center 
The both sides of the information showing the sequence of those signs that constitute the set of 
the sign as which sequence was determined, and the key which signs a sign are shared. The 
above-mentioned user The sign which it comes to update according to the above-mentioned 
sequence whenever it is going to receive the authentication which constitutes the above- 
mentioned set in receiving the above-mentioned authentication, The authentication information 
which consists of both sides with the authentication child who comes to sign the sign with the 
above-mentioned key is turned to the above-mentioned center, and it transmits. The above- 
mentioned center The 1st subrule that it is the sign in which the 1st sign contained in the 1st 
authentication information transmitted this time is behind located according to the above- 
mentioned sequence rather than the 2nd sign contained in the 2nd authentication information 
transmitted last time from the user, It investigates whether the 1st Ruhr which consists of a 
subrule of both sides with the 2nd subrule that he is the same authentication child compared with 
the authentication child to whom the 1st authentication child contained in the 1st authentication 
information comes to sign the 1st sign contained in the 1st authentication information with the 
above-mentioned key is followed. When the 1st Ruhr is followed, the dispatch origin of the 1st 
authentication information is characterized by attesting that he is the above-mentioned user 
surely. 

[0010] Moreover, the 2nd authentication method of this invention which attains the above- 
mentioned purpose The center which attests that it is the information to which the information 
has been transmitted from just dispatch origin based on the transmitted information, In the 
authentication method which performs the above-mentioned authentication between the users 
who receive authentication of being the information which transmitted information towards the 
center and was disseminated from dispatch origin with the just information on the both sides of 
the above-mentioned user and the above-mentioned center The both sides of the information 
showing the sequence of those signs that constitute the set of the sign as which sequence was 
determined, and the key which signs a sign are shared. The above-mentioned user The sign 
which it comes to update according to the above-mentioned sequence whenever it is going to 
receive the authentication which constitutes the above-mentioned set in receiving the above- 
mentioned authentication, Turn to the above-mentioned center the authentication information 
which consists of both sides with the authentication child who comes to sign the joint sign which 
comes to join together the sign and the center ID code which specifies the center of a 
transmission place with the above-mentioned key, and it transmits. The 1st subrule that the 
above-mentioned center is a sign in which the 1st sign contained in the 1st authentication 
information transmitted this time is behind located according to the above-mentioned sequence 
rather than the 2nd sign contained in the 2nd authentication information transmitted last time 
from the user, The 1st authentication child contained in the 1st authentication information It 
investigates whether the 1st Ruhr which consists of a subrule of both sides with the 2nd subrule 
that he is the same authentication child compared with the authentication child who comes to 
sign the joint sign which comes to join together the 1 st sign and its own center ID code which are 
contained in the 1st authentication information with the above-mentioned key is followed. When 
the 1st Ruhr is followed, the dispatch origin of the 1st authentication information is characterized 
by attesting that he is the above-mentioned user surely. 

[0011] Here, as for the above-mentioned center, in the 1st authentication method of above- 
mentioned this invention thru/or the 2nd authentication method, it is desirable to adopt the 
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subrule to which the regulation of being the sign to which the 1st sign of the above is located 
within the limits of predetermined according to the above-mentioned sequence with the 2nd sign 
as the starting point of the above was added as a subrule of the above 1st. Moreover, in the 
above-mentioned center, when the 1st authentication information transmitted this time does not 
follow the subrule of the above 2nd, it is judged with it being an unjust authentication demand. 
[0012] In the 1st authentication method of above-mentioned this invention, and the 2nd 
authentication method moreover, the above-mentioned center Although the 1st authentication 
information transmitted this time is needed for the subrule of the above 2nd therefore, when the 
subrule of the above 1st is not followed The random number generated in the center is 
transmitted to the above-mentioned user. The above-mentioned user From the above-mentioned 
center, the 3rd authentication information including the 2nd authentication child who comes to 
sign the transmitted random number with the above-mentioned key is turned to the above- 
mentioned center, and it transmits. The above-mentioned center It investigates whether the 2nd 
Ruhr that he is the same authentication child compared with the authentication child who comes 
to sign the above-mentioned random number which the 2nd authentication child contained in the 
3rd authentication information transmitted this time generated in the center with the above- 
mentioned key is followed. When this 2nd Ruhr is followed, it is effective to attest that both 
sides with 3rd authentication information transmitted 1st authentication information [ which has 
been transmitted last time ] and this time dispatch-origin is the above-mentioned user surely. 
[0013] It is desirable that it is a thing containing the 3rd sign whose authentication information 
on the above 3rd is the sign of either of the signs which constitute the above-mentioned set. 
Further in that case in this case, the above-mentioned user It is what transmits the authentication 
child who comes to sign the joint sign with which it comes to combine the above-mentioned 
random number and the 3rd sign of the above with the above-mentioned key as an authentication 
child of the above 2nd to the above-mentioned center. The above-mentioned center The 2nd 
authentication child contained in the 3rd authentication information transmitted this time as the 
2nd Ruhr of the above It is desirable that it is what adopts the Ruhr that he is the same 
authentication child compared with the authentication child who comes to sign the joint sign with 
which it comes to combine the above-mentioned random number generated in the center and the 
3rd sign contained in the authentication information transmitted this time with the above- 
mentioned key. 

[0014] Moreover, the 3rd authentication method of the authentication methods of this invention 
which attains the above-mentioned purpose The center which attests that it is the information to 
which the information has been transmitted from just dispatch origin based on the transmitted 
information, In the authentication method which performs the above-mentioned authentication 
between the users who receive authentication of being the information which transmitted 
information towards the center and was disseminated from dispatch origin with the just 
information on the both sides of the above-mentioned user and the above-mentioned center The 
both sides of the information showing the sequence of those signs that constitute the set of the 
sign as which sequence was determined, and the key which signs a sign are shared. The above- 
mentioned user Turn to the above-mentioned center authentication information including the 
authentication child who comes to sign the sign which it comes to update according to the above- 
mentioned sequence whenever it is going to receive the authentication which constitutes the 
above-mentioned set in receiving the above-mentioned authentication with the above-mentioned 
key, and it transmits. The 1st authentication child contained in the 1st authentication information 
transmitted this time the above-mentioned center It is the sign behind located according to the 
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above-mentioned sequence rather than the 2nd sign contained in the 2nd authentication 
information transmitted last time from the user. And when the 1st Ruhr that he is the same 
authentication child as the authentication child of either of each authentication child who comes 
to sign each sign located within the limits of predetermined according to the above-mentioned 
sequence with the 2nd sign as the starting point with the above-mentioned key is followed The 
dispatch origin of the 1st authentication information is characterized by attesting that he is the 
above-mentioned user surely. 

[0015] Furthermore, the 4th authentication method of the authentication methods of this 
invention The center which attests that it is the information to which the information has been 
transmitted from just dispatch origin based on the transmitted information, In the authentication 
method which performs the above-mentioned authentication between the users who receive 
authentication of being the information which transmitted information towards the center and 
was disseminated from dispatch origin with the just information on the both sides of the above- 
mentioned user and the above-mentioned center The both sides of the information showing the 
sequence of those signs that constitute the set of the sign as which sequence was determined, and 
the key which signs a sign are shared. The above-mentioned user Turn the authentication 
information included in the authentication child who comes to sign the joint sign which comes to 
join together the sign which it comes to update according to the above-mentioned sequence 
whenever it is going to receive the authentication which constitutes the above-mentioned set in 
receiving the above-mentioned authentication, and the center ID code which specifies the center 
of a transmission place with said key to the above-mentioned center, and it transmits. The 1st 
authentication child contained in the 1st authentication information transmitted this time the 
above-mentioned center It is the sign behind located according to the above-mentioned sequence 
rather than the 2nd sign contained in the 2nd authentication information transmitted last time 
from the user, and When the 1st Ruhr that he is the same authentication child as the 
authentication child of either of each authentication child who comes to sign each joint sign 
which comes to join together each sign and its own center ID code which are located within the 
limits of predetermined according to the above-mentioned sequence with the 2nd sign as the 
starting point with the above-mentioned key is followed The dispatch origin of the 1st 
authentication information is characterized by attesting that he is the above-mentioned user 
surely. 

[0016] here ~ the 1- of above-mentioned this invention - in the 4th authentication method, the 
above-mentioned user has the 1st clock which gets to know current time, and the user may use 
the sign showing the current time obtained from the clock as a sign which constitutes the above- 
mentioned set. The above-mentioned center has further the 2nd clock which gets to know current 
time. In that case, the center While the 1st authentication information transmitted this time 
follows the 1st Ruhr of the above Furthermore, the current time which the 1st sign contained in 
the 1st authentication information expresses, The 1st elapsed time from current time which the 
2nd sign contained in the 2nd authentication information transmitted last time expresses The 
receipt time of the 1st authentication information which was acquired from the 2nd clock of the 
above and which has been transmitted this time, When it is within a predetermined allowable 
error compared with the 2nd elapsed time from the receipt time of the 2nd authentication 
information transmitted last time, it is desirable to attest that the dispatch origin of the 1st 
authentication information is the above-mentioned user surely. 
[0017] 
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[Embodiment of the Invention] Hereafter, the operation gestaU of this invention is explained. 
Drawing 1 is drawing showing the data flow in the authentication method of the 1st operation 
gestalt of this invention. In addition, in order to give explanation easy here, the same number as 
the item numbers 2-10 indicated below is given to the arrow head which shows the data flow of 
drawing 1 , and is explained. 

1 . Premise (this Nxmiber 1 is not Entered in Drawing 1 ) 

The user 10 who shows drawing 1 has the both sides of a counter and the key which signs the 
counted value of the counter. The counted value of this counter is equivalent to the sign said to 
this invention, and a series of counted value of that counter is equivalent to the set of the sign 
said to this invention. Here, suppose that the current counted value of this counter is counted 
value (i). Moreover, the user 10 registers into two centers 1 1 and 12 the key which signs counted 
value. On the other hand, centers 11 and 12 hold the counted value obtained by former 
authentication processing of a user 10 (here, the coimted value of a center 11 is the counted value 
(i-2) of (i-1) and a center 12, and such counted value differs mutually). Thus, the both sides of a 
user 10 and centers 1 1 and 12 are sharing both sides with the information (information showing 
the sequence of the sign said to this invention), i.e., the information that the sequential increment 
of the counted value is carried out, that the counter used here is a rise counter, and the key for 
signing counted value here. 

2. Authentication Request to Center 1 1 (the 1) 

In receiving authentication, a user 10 tums to a center 1 1 the authentication information (i, E (i)) 
which consists of counted value at that time (i), and both sides with authentication child E (i) 
which comes to sign the counted value (i) with a key, and transmits. After that, a user 10 
increments counted value (i) and is taken as counted value (i+1). 

3. Authentication Processing Center 11 in Center 11 The authentication information transmitted 
this time () [ i, ] [ E] (i) The counted value contained in (the 1st authentication information said 
to this invention) The 1st subrule that it is counted value with a bigger value than the counted 
value (i-1) (the 2nd sign said to this invention) contained in the authentication information (i-1, E 
(i-1)) (2nd authentication information said to this invention) to which (i) and the (1st sign said to 
this invention) have been transmitted last tinie. Authentication child E (i) contained in 
authentication information (i, E (i)) It investigates whether the Ruhr (the 1st Ruhr said to this 
invention) which consists of a subrule of both sides with the 2nd subrule that he is the same 
authentication child compared with authentication child E (i) which comes to sign with a key the 
counted value (i) contained in the authentication information (i, E (i)) is followed. When the 
Ruhr is followed, the dispatch origin of the authentication information (i, E (i)) attests that he is a 
user 10 surely. Moreover, a center 11 records the counted value (i) received from the user 10. 
Furthermore, since the dispatch origin of the authentication information is a valid user 10, a 
center 1 1 provides the user 10 with service. 

4. Authentication Request to Center 1 1 (the 2) 

In receiving the next authentication, a user 10 tums to a center 1 1 the authentication information 
(i+1, E (i+1)) which consists of both sides with the authentication child E (i+1) who comes to 
sign counted value (i+l) and its counted value (i+l) with a key, and transmits. When it contrasts 
with this invention, it is equivalent to the 1st authentication information that this authentication 
information (i+1, E (i+1)) is also said to this invention. A user 10 increments counted value (i+1) 
after that, and is taken as counted value (i+2). 

5. Authentication Processing Center 1 1 in Center 1 1 The 1st subrule that it is counted value with 
a big value fi'om the counted value (i) contained in the authentication information (i, E (i)) to 
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which the counted value (i+1) contained in the authentication information (i+l, E (i+1)) 
transmitted this time has been transmitted last time, The authentication child E (i+1) contained in 
authentication information (i+l, E (i+1)) It investigates whether the Ruhr (the 1st Ruhr said to 
this invention) which consists of a subrule of both sides with the 2nd subrule that he is the same 
authentication child compared with the authentication child E (i+1) who comes to sign with a 
key the counted value (i+1) contained in the authentication information (i+1, E (i+1)) is 
followed. When the Ruhr is followed, the dispatch origin of the authentication information (i+1, 
E (i+1)) attests that he is a user 10 surely. Moreover, a center 1 1 records the counted value (i+1) 
from a user 10. Furthermore, since the dispatch origin of the authentication information is a valid 
user 10, a center 1 1 provides the user 10 with service. 

[0018] Although two authentication processings were performed even here, if challenge- 
response authentication is repeated twice simply, by the authentication method of this operation 
gestalt, it has ended with four conununication links the place for which a communication link on 
the need of sending a random number to a user 10 from a center 1 1 is needed 8 times. Next, as a 
result of continuing at the processing mentioned above and performing an authentication 
demand, the case where a communication link goes wrong is explained. 

6. Authentication Request to Center 1 1 (the 3) 

In receiving authentication, a user 10 tums to a center 11 the authentication information (i+2, E 
(i+2)) which consists of both sides with the authentication child E (i+2) who comes to sign 
coimted value (i+2) and its counted value (i+2) with a key, and transmits. A user 10 increments 
counted value (i+2) after that, and is taken as counted value (i+3). However, since this 
communication link goes wrong and there is no response from a center 11, a user's 
communications processing serves as a time-out, and requests authentication anew. 

7. Authentication Request to Center 1 1 (the 4) 

In receiving authentication, a user 10 tums to a center 1 1 the authentication information (i+3, E 
(i+3)) which consists of both sides with the authentication child E (i+3) who comes to sign 
counted value (i+3) and its counted value (i+3) v^th a key, and transmits. In addition, it is 
equivalent to the 1st authentication information that this authentication information (i+3, E (i+3)) 
is also said to this invention. A user 10 increments counted value (i+3) after that, and is taken as 
counted value (i+4). 

8. Authentication Processing Center 1 1 in Center 1 1 The 1st subrule that it is counted value with 
a bigger value than the counted value (i+1) contained in the authentication information (i+1, E 
(i+1)) to which the counted value (i+3) contained in the authentication information (i+3, E (i+3)) 
transmitted this time has been transmitted last time. The authentication child E (i+3) contained in 
authentication information (i+3, E (i+3)) It investigates whether the Ruhr which consists of a 
subrule of both sides with the 2nd subrule that he is the same authentication child compared with 
the authentication child E (i+3) who comes to sign v^th a key the counted value (i+3) contained 
in the authentication information (i+3, E (i+3)) is followed. When the Ruhr is followed, the 
dispatch origin of the authentication information (i+3, E (i+3)) attests that he is a user 10 surely. 
Moreover, as for a center 11, the dispatch origin of the authentication information records the 
counted value (i+3) from a user 10. Furthermore, since the dispatch origin of the authentication 
information is a valid user 10, a center 1 1 provides the user 10 with service. 

[0019] Thus, even if it is the case where authentication information (i+2, E (i+2)) does not arrive 
at a center 1 1 The counted value (i+3) contained in the following authentication information 
(i+3, E (i+3)) in a center 11 is larger than the counted value (i+1) currently recorded on the 
center 11. And since the authentication child (E (i+3)) contained in authentication information 
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(i+3, E (i+3)) is also the same authentication child as the authentication child who comes to sign 
counted value (i+3) with a key, he has succeeded in authentication. 

[0020] Next, the case where an authentication demand is given to the center 12 which is a center 
which is different in a center 1 1 following on the processing mentioned above is explained. 

9. In receiving authentication, the authentication request user 10 to a center 12 turns to a center 
12 the authentication information (i+4, E (i+4)) (it is the 1st authentication information that this 
authentication information is also said to this invention) which consists of both sides with the 
authentication child E (i+4) who comes to sign counted value (i+4) and its counted value with a 
key, and transmits. A user 10 increments counted value (i+4) after that, and is taken as counted 
value (i+5). 

10. Authentication Processing Center 12 in Center 12 The 1st subrule that it is counted value 
with a bigger value than the counted value (i-2) contained in the authentication information (i-2, 
E (i-2)) to which the counted value (i+4) contained in the authentication information (i+4, E 
(i+4)) transmitted this time has been transmitted last time. The authentication child E (i+4) 
contained in authentication information (i+4, E (i+4)) It investigates whether the Ruhr (the 1st 
Ruhr said to this invention) which consists of a subrule of both sides with the 2nd subrule that he 
is the same authentication child compared with the authentication child (E (i+4)) who comes to 
sign with a key the counted value (i+4) contained in the authentication information (i+4, E (i+4)) 
is followed. When the Ruhr is followed, the dispatch origin of the authentication information 
(i+4, E (i+4)) attests that he is a user 10 surely. Moreover, a center 12 records the counted value 
(i+4) from a user 10. Furthermore, since the dispatch origin of the authentication information is a 
valid user 10, a center 12 provides the user 10 with service. 

[0021] Thus, even if a user is the case where it is not necessary to change an authentication child 
for every center, and which center is accessed, he is good at the same processing, and for this 
reason, the device by the side of a user becomes easy. In the authentication method shown in 
drawing 1 , drawing 2 is drawing having shown the processing in the case of being smaller than 
the counted value by which the counted value from a user was recorded on the center, when a 
center receives an authentication request. 

[0022] A center 1 1 is judged to be unjust access when an authentication child is not right (when 
not satisfying the 2nd subrule said to this invention). On the other hand, since the user 10 has 
reset the counter by a certain reason when an authentication child has the right smaller than the 
counted value by which the counted value from a user was recorded on the center (the 1st 
subrule said to this invention is not satisfied), the present counted value is asked to a user 10. The 
inquiry procedure is explained with reference to drawing 2 . The same number as the item 
numbers 1-4 indicated below is given to drawing 2 , and is shown. 

[0023] 1. In receiving authentication, the authentication request user 10 to a center 11 turns to a 
center 11 the authentication information (i, Ei) (1st authentication information said to this 
invention) which consists of both sides with authentication child E (i) which comes to sign the 
value (i) and the value of a counter of a counter (i) with a key, and transmits. A user 10 
increments (i) of a count after that, and makes it counted value (i+1). 

[0024] 2. In Authentication Processing Center 11 in Center 11 Since the counted value (i) 
contained in the authentication information (i, E (i)) transmitted this time is smaller than the 
counted value (the counted value recorded on the center 1 1 here presupposes that it was the 
counted value of a larger value than counted value (i)) recorded on the center 1 1 Next, when the 
counted value (i) contained in authentication information (i, E (i)) is signed with a key, an 
authentication child is created and the created authentication child is not in agreement with 



11 



authentication child [ from a user 10 ] E (i), it judges that it is unjust access and a communication 
link is ended. On the other hand, when the created authentication child is in agreement with 
authentication child [ from a user 10 ] E (i), a center 11 transmits the random number R which 
arbitration was made to generate with the random number generator (not shown) with which the 
center 11 was equipped to a user 10. Moreover, this counted value (i) is recorded temporarily, 
holding the counted value (i-1) recorded on the center 1 1 at this time. 

[0025] 3. The random number R with which a user's 10 response user 10 has been transmitted 
from a center 1 1 It updates from the counted value (i) contained in the authentication information 
(i, E (i)) which the user 10 transmitted last time. With the authentication child E who comes to 
sign the joint sign with which it comes to combine the becoming counted value (i+1) (the 3rd 
sign said to this invention) with a key (R, i+1) (an example of the 2nd authentication child who 
says this invention) The authentication information (i+1, E (R, i+1)) (3rd authentication 
information said to this invention) which consists of both sides with the counted value (i+1) is 
tumed to a center 1 1 , and it transmits. 

[0026] 4. Authentication Processing Center 1 1 in Center 1 1 is Coimted Value with Big Value 
from Counted Value (I) Contained in Authentication Information (I, E (I)) to which Counted 
Value (I+l) Contained in Authentication Information (I+l, E (R, I+l)) Transmitted this Time 
Has been Transmitted Last Time. And the random number R which the authentication child E 
(R, i+1) contained in the authentication information (i+1, E (R, i+1)) transmitted this time 
generated in the center 1 1 It investigates whether the Ruhr (an example of the 2nd Ruhr said to 
this invention) that he is the same authentication child compared with the authentication child 
who comes to sign with a key the joint sign with which it comes to combine the counted value 
(i+1) contained in the authentication information (i+1, E (R, i+1)) transmitted this time is 
followed. When the Ruhr is followed, both sides with authentication information (i+1, E (R, 
i+1)) transmitted authentication information [ which has been transmitted last time ] (i, E (i)) and 
this time dispatch-origin attests that he is a user 10 surely, and offers service. Moreover, the 
counted value (i+1) sent by the user 10 at this time is recorded. In addition, when the Ruhr is not 
followed, it is judged as unjust access, and the counted value (i) recorded temporarily is 
canceled, and it retums to the counted value (i-1) currently recorded before that, 
[0027] If it furthermore continues and the authentication request (number 5 shown in drawing 2 ) 
to the center 11 by the user 10 is performed, authentication processing (number 6 shown in 
drawing 2 R> 2) to the authentication request by the center 11 will be performed. Thus, 
according to the authentication method of the above-mentioned 1st operation gestalt, the 
authentication in a center is made based on larger counted value than a user's counted value 
obtained as a result of the authentication in which it succeeded [ last ]. In other words, it is not 
necessary to necessarily attest by the authentication child generated from the continuous counted 
value according to this operation gestalt, and since it is an authentication (that user has key also 
attests to coincidence, of course) method which attests that counted value is progressing, even if 
this operation gestalt does not have the guarantee in which an authentication child surely reaches 
a center, it can carry out authentication processing without excessive processing succeedingly. 
[0028] moreover, counted value — even progressing - since what is necessary is just to be, a user 
does not need to record the authentication child who transmitted for every center, and even when 
accessing a different center, he can perform an authentication request by the same device. 
Furthermore, with the above-mentioned operation gestalt, since it has the device in which the 
synchronization of a counter is taken as explained with reference to drawing 2 , in order to raise 
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safety, also when the value of a usefs counter is changed by the case where a user's counted 
value is changed, re-install of a user side system, etc., it can be coped with easily. 
[0029] In addition, the authentication information transmitted as 1st subrule with the operation 
gestalt of the above 1st this time (For example, authentication information to which the counted 
value (j) contained in authentication information Q,EQ)) has been transmitted last time (for 
example, although the subrule that it was counted value (j>i) with a big value was adopted from 
the counted value (i) contained in authentication information (i, E (i)))) The regulation that tj-i] is 
in the predetermined range (|j-i|<=n) may be added to this 1st subrule. By carrying out like this, 
communicative safety is raised further. Moreover^ although the both sides of coimted value (for 
example, counted value 0)) and the authentication child (for example, E (j)) who comes to sign 
the counted value (j) with a key are included in the authentication information transmitted to a 
center from a user with the 1st above-mentioned operation gestaU The ** which the counted 
value (for example, counted value (j)) itself does not transmit towards a center as a modification 
of this 1st operation gestaU from a user, Only the authentication child (for example, E 0)) is 
transmitted. In the center the counted value (for example, coimted value (i+1) -) located within 
the limits of predetermined with counted value i as the starting point memorized from the user 
corresponding to the authentication child (for example, E (i)) transmitted last time (i+2), 
(i+N) each - a key - signing - each authentication child E (i+l) - Authentication child E (j) 
which created E (i+2), E (i+N), and has been transmitted by the user this time When in 
agreement with the authentication child of either of those authentication children E (i+1), E 
(i+2), E (i+N) You may constitute so that it may attest with the dispatch origin of 
authentication child E (j) being a right user and the counted value 0) corresponding to the 
authentication child who was in agreement may be recorded for authentication at next time. In 
this case, the center expects instead of [ which does not need the counted value (the 1st sign said 
to this invention) itself ] to be within the limits of predetermined [ which that counted value (the 
1 St sign) determined beforehand ] . 

[0030] Furthermore, with the above-mentioned 1st operation gestah, as explained with reference 
to drawing 2 In a center an authentication child A right (the 2nd Ruhr said to this invention is 
satisfied) thing, When [ with the counted value smaller (the 1st subrule said to this invention is 
not satisfied) than the counted value recorded on the center from a user ] a purport judging is 
carried out Although the random number was transmitted towards the user from the center and 
the authentication child who comes to sign with a key the joint sign with which it comes to 
combine from a user the random number and counted value (3rd sign said to this invention), and 
both sides of counted value own [ the ] (the 3rd sign) were transmitted to the center The 
authentication child who transmits to a center from a user may be an authentication child who 
comes to sign with a key only in a random number. Even if it is that case, it is necessary to 
transmit the counted value (the 3rd sign) which starts a center from a user. Even if it is the case 
where the authentication child who comes to sign only a random number with a key is 
transmitted to a center, counted value (the 3rd sign) does not transmit, either, because [ of this 
authentication ], and it is for next authentication. 

[0031] Drawing 3 is dravdng showing the data flow in the authentication method of the 2nd 
operation gestalt of this invention. Here, difference with the 1st operation gestalt explained with 
reference to drawing 1 is explained. If an item number 2 is explained to an example about 
counted value when the item numbers 2, 4, 6, and 7 shown in drawing 2 , i.e., a user, transmit 
authentication information towards a center 11 with the 2nd operation gestalt shown in this 
drawing 3 The counted value at that time (i). The authentication information (i, E (i, CI)) which 
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consists of both sides with the authentication child E (i, CI) who comes to sign with a key the 
joint sign (i, CI) which comes to join together the counted value (i) and the center ID code (CI) 
which specifies the center 1 1 of a transmission place is turned to a center 1 1, and it transmits. A 
user 10 After that, Counted value (i) is incremented and it considers as counted value (i+1). 
[0032] In the item numbers 3,5, and 8 shown in drawing 3 , moreover, a center 1 1 If an item 
number 3 is explained to an example about counted value The 1 st subrule that it is counted value 
with a bigger value than the counted value (i-1) contained in the authentication information (i-1, 
E (i-1, CI)) to which the counted value (i) contained in the authentication information (i, E (i, 
CI)) transmitted this time has been transmitted last time, The counted value by which the 
authentication child E (i, CI) contained in authentication information (i, E (i, CI)) is contained in 
the authentication information (i, E (i, CI)) (i), When it investigates whether the Ruhr which 
consists of a subrule of both sides with the 2nd subrule that he is the same authentication child 
compared with the authentication child E (i, CI) who comes to carry out prominent to the joint 
sign (i, CI) which comes to join its own center ID code (CI) together with a key is followed and 
the Ruhr is followed The dispatch origin of the authentication information (i, E (i, CI)) attests 
that he is a user 10 surely. Moreover, since the dispatch origin of the authentication information 
is a valid user 10, a center 1 1 provides the user with service. 

[0033] Each processing in the item numbers 9 and 10 shown in drawing 3 is only changed into 
the center ID code (C2) as which a center ID code specifies a center 12 compared with the 
processing in the item numbers 2, 4, 6, and 7 mentioned above, and the processing in item 
numbers 3, 5, and 8, respectively, and duplication explanation is omitted. With the 2nd operation 
gestalt shown in this drawing 3 , when sending autiientication information towards centers 1 1 
and 12 from a user 10, it specifies whether it is the authentication information sent to which 
addressing to a center, and the joint sign which consists of both sides of counted value and its 
destination (center ID code) is signed so that [ that destination ] it may not be altered. By 
carrying out like this, the authentication which was mistaken when the authentication 
information which the user 10 was going to send to the center 1 1 had been sent to the center 12 
by the 3rd malicious person can be prevented. 

[0034] In addition, if the 2nd operation gestalt explained with reference to drawing 3 is replaced 
with signing the counted value in the 1st operation gestah with a key, and creating an 
authentication child, the joint sign with which it comes to combine counted value and a center ID 
code is signed with a key, an authentication child is created and only this point is changed, the 
modification of the 1st operation gestah mentioned above etc. will be applied as it is. Therefore, 
the explanation beyond this about the 2nd operation gestalt is omitted here. 
[0035] Drawing 4 is drawing showing the flow of the authentication method of the 3rd operation 
gestalt of this invention. In addition, the same number as item numbers 2-8 is attached and 
explained to drawing 4 among the item numbers 1-8 shown below. 

1. The user 30 who shows premise drawing 4 , arid centers 31 and 32 have the clock which gets 
to know current time, respectively. Moreover, the user 30 registers beforehand into centers 31 
and 32 the key which signs the time of day by the user's 30 clock. On the other hand, centers 31 
and 32 hold the access time of day obtained by authentication processing before basing on a 
user's 30 clock, moreover, the centers 31 and 32 - centers 31 and 32 - the access time of day to 
the centers 31 and 32 by each clock is held. In addition, the access time of day (tu02) to the 
access time of day (tuOl) to a center 31 and the center 32 by a user's 30 clock differs mutually. 
Moreover, the access time of day (tcOl) and the access time of day to the center 32 by the clock 
of a center 32 to the center 31 by the clock of a center 31 (tc02) also differ from each other 
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mutually. The access time of day tuOl and tcOl also usually differs. Similarly, the access time of 
day tu02 usually differs also from the access time of day tc02. . 

2. Authentication Request to Center 31 (the 1) 

In receiving authentication, a user 30 turns to a center 31 the authentication information (tul, E 
(tul)) which consists of both sides with the authentication child E (tul) who comes to sign with a 
key the time of day tul by the user's 30 clock (the 1st clock said to this invention), and its time of 
day tul, and transmits. 

3. Authentication Processing Center 31 in Center 31 is Time of Day Which Progressed ahead of 
Time of Day TuOl Contained in Authentication Information (TuOl, E (TuOl)) to which Time of 
Day Tul Contained in Authentication Information (Tul, E (Tul)) Transmitted this Time Has 
been Transmitted Last Time. And the authentication child E (tul) contained in the authentication 
information (tul, E (tul)) transmitted this time It investigates whether the Ruhr that he is the 
same authentication child compared with the authentication child who comes to sign with a key 
the time of day tul contained in the authentication information (tul, E (tul)) transmitted this 
time is followed. The current time which the time of day tul contained in the authentication 
information (tul, E (tul)) expresses further when the Ruhr is followed, The 1st elapsed time 
from current time which the time of day tuOl contained in the authentication information (tuOl, 
E (tuOl)) transmitted last time expresses (tul-tuOl), The receipt time tcl of the authentication 
information (tul, E (tul)) which was acquired from the clock (the 2nd clock said to this 
invention) of a center 31 and which has been transmitted this time. The 2nd elapsed time (tcl- 
tcOl) from the receipt time tcOl of the authentication information (tuOl, E (tuOl)) transmitted 
last time is compared. That is, when |(tul-tu01)-(tcl-tc01) | (however, || shows an absolute value) 
is calculated and the count result is within a predetermined allowable error (for example, 30 
seconds), the dispatch origin of the authentication information (tul, E (tul)) attests that he is a 
user 30 surely. Moreover, in the center 31, time of day tul and tcl is recorded. Furthermore, 
since the dispatch origin of this authentication information is a valid user 30, the user 30 is 
provided with service. 

[0036] Next, as a result of continuing at the processing mentioned above and performing an 
authentication demand, the case where a communication link goes wrong is explained. 

4. Authentication Request to Center 3 1 (the 2) 

In receiving authentication, a user 30 turns to a center 31 the authentication information (tu2, E 
(tu2)) which consists of both sides with the authentication child E (tu2) who comes to sign the 
time of day tu2 by the user's 30 clock, and its time of day tu2 with a key, and transmits. 
However, since this communication link goes wrong and there is no response from a center 31, 
in a user 30, that communications processing is judged to be a time-out, and requests 
authentication anew. 

5. Authentication Request to Center 3 1 (the 3) 

In receiving authentication, a user 30 tums to a center 31 the authentication information (tu3, E 
(tu3)) which consists of both sides with the authentication child E (tu3) who comes to sign the 
time of day tu3 by the user's 30 clock, and its time of day tu3 with a key, and transmits. 

6. Investigate whether Authentication Processing Center 31 in Center 31 Follows Ruhr Which 
Authentication Information (Tu3, E (Tu3)) Transmitted this Time Mentioned above. The current 
time which the time of day tu3 contained in the authentication information (tu3, E (tu3)) 
expresses further when the Ruhr is followed, The 1st elapsed time from current time which the 
time of day tul contained in the authentication information (tul, E (tul)) transmitted last time 
expresses (tu3-tul), The 2nd elapsed time (tc3-tcl) from the receipt time tcl of the 
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authentication information (tul, E (tul)) transmitted last time [ of the receipt time tc3 of the 
authentication information (tu3, E (tu3)) transmitted this time ] acquired from the clock of a 
center 31 is compared. That is, when |(tu3-tul)-(tc3-tcl) | (however, || shows an absolute value) 
is calculated and the count result is within a predetermined allowable error (for example, 30 
seconds), the dispatch origin of the authentication information (tu3, E (tu3)) attests that he is a 
user 30 surely. Moreover, in the center 31, time of day tu3 and tc3 is recorded. Furthermore, 
since the dispatch origin of the authentication information is a valid user 30, the user 30 is 
provided with service. 

[0037] Next, foUovsdng on the processing mentioned above, the case where an authentication 
demand is given to centers 32 other than center 31 is explained. 

7. Authentication Request to Center 32 (the 1) 

In receiving authentication, a user 30 tums to a center 32 the authentication information (tu4, E 
(tu4)) which consists of both sides with the authentication child E (tu4) who comes to sign the 
time of day tu4 by the user*s 30 clock, and its time of day tu4 with a key, and transmits. 

8. Investigate whether Authentication Processing Center 32 of Center 32 Follows Ruhr Which 
Authentication Information (Tu4, E (Tu4)) Transmitted this Time Mentioned above. The current 
time which the time of day tu4 contained in the authentication information (tu4, E (tu4)) 
expresses further when the Ruhr is followed, The 1st elapsed time from current time which the 
time of day tu02 contained in the authentication information (tu02, E (tu02)) transmitted last 
time expresses (tu4-tu02), The 2nd elapsed time (tc4-tc02) from the receipt time tc02 of the 
authentication information (tu02, E (tu02)) transmitted last time [ of the receipt time tc04 of the 
authentication information (tu4, E (tu4)) transmitted this time ] acquired from the clock of a 
center 32 is compared. That is, when |(tu4-tu02)-(tc4-tc02) | (however, || shows an absolute 
value) is calculated and the count result is within a predetermined allowable error (for example, 
30 seconds), the dispatch origin of the authentication information (tu4, E (tu4)) attests that he is a 
user 30 surely. Moreover, in the center 32, time of day tu4 and tc4 is recorded. Furthermore, 
since the dispatch origin of the authentication information is a valid user 30, the user 30 is 
provided with service. 

[0038] Thus, in the authentication method of the 3rd operation gestalt of this invention, since the 
both sides of a user and a center are equipped with the clock, a user does not need to record the 
authentication child who sent for every center, and even when accessing a different center, he 
can perform an authentication request by the same device. Moreover, the authentication in a 
center may have an error between a user's clock and the clock of a center that only the time 
amount as the clock of a center with a user's same clock should be progressing. Moreover, by 
combining with the technique which is shown in drawing 2 and to which a center transmits a 
random number towards a user, even when safety can be raised fiirther and a user's clock is reset 
by re-install of a user side system etc., it can be coped with. 

[0039] In addition, in the 3rd operation gestalt explained with reference to drawing 4 , it replaces 
v^th signing only time of day with a key and creating an authentication child, and like the 2nd 
operation gestalt mentioned above, the joint sign with which it comes to combine time of day 
and a center ID code may be signed with a key, and an authentication child may be created. If it 
carries out like this, the authentication which was mistaken when the authentication information 
which should be transmitted to a center 3 1 reached a center 32 can be prevented. 
[0040] 

[Effect of the Invention] As explained above, according to the authentication method of this 
invention, the authentication in a center It is the sign located after the sign by which the 1st sign 
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contained in the 1st authentication information transmitted this time was contained in the 2nd 
authentication information transmitted last time. And since the 1st authentication child contained 
in the 1st authentication information is made based on the Ruhr that he is the same authentication 
child compared with the authentication child who comes to sign with a key the 1st sign (or joint 
sign with which it comes to combine the 1st sign and center ID code) contamed in the 1st 
authentication information, Even if it is the case where an authentication child does not reach a 
center, authentication processing can be performed easily succeedingly. Moreover, a user does 
not need to record the authentication child who sent for every center, and even when accessing a 
different center, he can perform authentication processing by the same device. 

[Brief Description of the Drawings] 

[Drawing 1] It is drawing showing the flow of the authentication method of the 1st operation 
gestalt of this invention. 

[Drawing 2] In the authentication method shown in drawing 1 , when a center receives an 
authentication request, it is drawing having shown processing when the counted value from a 
user is smaller than the counted value recorded on the center. 

[Drawing 3] It is drawing showing the flow of the authentication method of the 2nd operation 
gestalt of this invention. 

[Drawing 4] It is drawing showing the flow of the authentication method of the 3rd operation 

gestalt of this invention. 

[Drawing 51 It is drawing showing the flow of the authentication method of the conventional 
challenge response mold. 

[Drawing 61 It is drawing showing the flow of the authentication method of the challenge 

response mold proposed by JP,5-219053,A. 

[Description of Notations] 

10 30 User 

11, 12, 31, 32 Center 
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